Direct proof of security of Wegman-Carter authentication with partially known key

DOI10.1007/S11128-013-0641-6zbMATH Open1303.81058arXiv1303.0210OpenAlexW3103341657MaRDI QIDQ479440FDOQ479440

Publication date: 5 December 2014

Published in: Quantum Information Processing (Search for Journal in Brave)

Abstract: Information-theoretically secure (ITS) authentication is needed in Quantum Key Distribution (QKD). In this paper, we study security of an ITS authentication scheme proposed by Wegman & Carter, in the case of partially known authentication key. This scheme uses a new authentication key in each authentication attempt, to select a hash function from an Almost Strongly Universal

_{2}

hash function family. The partial knowledge of the attacker is measured as the trace distance between the authentication key distribution and the uniform distribution; this is the usual measure in QKD. We provide direct proofs of security of the scheme, when using partially known key, first in the information-theoretic setting and then in terms of witness indistinguishability as used in the Universal Composability (UC) framework. We find that if the authentication procedure has a failure probability

e p s i l o n

and the authentication key has an

e p s i l o n^{'}

trace distance to the uniform, then under ITS, the adversary's success probability conditioned on an authentic message-tag pair is only bounded by

e p s i l o n + | m T | e p s i l o n^{'}

, where

| m T |

is the size of the set of tags. Furthermore, the trace distance between the authentication key distribution and the uniform increases to

| m T | e p s i l o n^{'}

after having seen an authentic message-tag pair. Despite this, we are able to prove directly that the authenticated channel is indistinguishable from an (ideal) authentic channel (the desired functionality), except with probability less than

e p s i l o n + e p s i l o n^{'}

. This proves that the scheme is (

e p s i l o n + e p s i l o n^{'}

)-UC-secure, without using the composability theorem.

Full work available at URL: https://arxiv.org/abs/1303.0210

Recommendations

zbMATH Keywords

authentication quantum key distribution trace distance partially known key strongly universal hash functions universal composability

Mathematics Subject Classification ID

Cryptography (94A60) Quantum state spaces, operational and probabilistic concepts (81P16) Quantum cryptography (quantum-theoretic aspects) (81P94)

Cites Work

Cited In (4)

This page was built for publication: Direct proof of security of Wegman-Carter authentication with partially known key

Report a bug (only for logged in users!)Click here to report a bug for this page (MaRDI item Q479440)